CVE-2026-22747

EPSS 0.03%
Veröffentlicht 22.04.2026 05:08:41
Zuletzt bearbeitet 24.04.2026 14:18:56
Quelle security@vmware.com
CVE-Watchlists
Login
Unerledigt
Login

Unauthorized User Impersonation when Using X.509 Client Certificates

Vulnerability in Spring Spring Security. SubjectX500PrincipalExtractor does not correctly handle certain malformed X.509 certificate CN values, which can lead to reading the wrong value for the username. In a carefully crafted certificate, this can lead to an attacker impersonating another user.
This issue affects Spring Security: from 7.0.0 through 7.0.4.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

VMware ≫ Spring Security Version >= 7.0.0 < 7.0.5

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.07

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.1	2.8	5.2	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
security@vmware.com	6.8	1.6	5.2	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

CWE-297 Improper Validation of Certificate with Host Mismatch

The product communicates with a host that provides a certificate, but the product does not properly ensure that the certificate is actually associated with that host.

https://spring.io/security/cve-2026-22747

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-22747

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-22747

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-22747

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-22747